A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the import CA and CRL certificates feature.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2018-07-16T20:00:00
Updated: 2024-08-05T20:51:32.239Z
Reserved: 2017-12-11T00:00:00
Link: CVE-2017-17541
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-07-16T20:29:00.270
Modified: 2018-09-12T19:22:27.007
Link: CVE-2017-17541
Redhat
No data.